$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft File: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft (raw, json) Hash identifier: WEAI1I8tm33pnkoUBUnOS5Ja9zBqpxVhwgwS+btRZN4= Subject key identifier: 68:0E:56:12:3F:40:6F:CA:29:58:9A:D6:49:20:D2:10:17:8A:11:B8 Authority key identifier: A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA Certificate issuer: /CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft Manifest number: 89 Signing time: Fri 31 May 2024 08:01:42 +0000 Manifest this update: Fri 31 May 2024 08:01:42 +0000 Manifest next update: Fri 07 Jun 2024 08:01:41 +0000 Files and hashes: 1: oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl (hash: GdfAFYPRp6p1tFZpwrTrbXxEDUqzSDnDKD7Su+qy2BE=) 2: 599F65C652C011EEAAE0CD34C4F9AE02.roa (hash: YUSUdSQGsAYrkhG5r+Ikfnd8mpcwF6T3vxWqRkOzHrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Validity Not Before: May 31 08:01:42 2024 GMT Not After : Jun 7 08:01:41 2024 GMT Subject: CN=665983e6-6e16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c3:a6:07:ff:98:78:31:c8:02:2b:2a:ba:86: ab:c5:3b:53:08:10:82:bc:95:aa:de:43:d0:12:e5: 96:3c:cf:b8:0f:30:eb:74:12:fb:9c:dd:25:11:84: 4c:80:6d:ca:a2:65:b2:ac:46:1d:45:5b:c1:8a:a7: ba:74:1d:30:ab:97:1e:f6:99:01:b4:6a:2e:ae:c2: 58:a2:60:df:1a:3a:a8:39:07:52:7a:49:00:d9:8d: b4:94:58:2a:69:b8:87:70:aa:c9:77:df:0b:a5:ff: 25:4d:38:39:2e:63:b0:82:3e:ad:77:91:f6:8f:57: 3a:4b:90:db:ad:5d:d7:bd:df:0c:a2:68:4e:f0:8b: 66:99:f5:9f:79:c2:35:c8:65:b4:f7:20:09:0a:06: c2:41:42:61:13:b5:fa:f2:f3:93:c7:f5:83:af:85: 6e:79:b0:1d:3c:7c:c3:8d:88:56:20:c3:db:54:11: 39:c6:06:05:08:bb:1b:70:fb:53:b8:b9:f3:5a:cc: 71:3f:f0:25:fd:e3:1d:44:bc:7e:b8:21:ce:23:11: 7e:18:d0:4b:3b:d4:bf:a3:3e:d9:a1:63:9c:48:d5: a0:08:05:e7:09:2a:6b:61:57:2d:36:41:e9:04:f5: 32:27:e0:b7:28:4b:4a:0e:18:be:70:d4:23:ce:24: 59:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:0E:56:12:3F:40:6F:CA:29:58:9A:D6:49:20:D2:10:17:8A:11:B8 X509v3 Authority Key Identifier: keyid:A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:ca:55:cb:5f:00:88:34:d3:50:c1:22:85:63:91:3f:94:e0: 28:07:fb:ab:de:d3:00:0d:2f:17:2d:1b:74:d6:18:6d:32:e4: 07:75:4d:3d:f0:10:d7:59:5e:8e:7e:78:85:be:c7:f0:ad:c0: 34:e6:da:69:01:16:83:9a:6c:52:32:4a:a3:0e:b7:56:ef:90: 8f:64:19:74:e4:a6:95:95:ee:8e:fd:21:c0:c8:f7:f8:0f:ef: 01:cf:57:7e:97:1d:ac:22:ce:e2:82:58:48:1a:cc:ef:66:c4: 7f:51:59:4b:04:26:3b:ed:c7:30:2f:23:fd:4d:7d:53:72:6c: d2:b0:c7:81:7e:77:d5:07:31:33:90:c6:c2:3c:d5:9f:b4:14: 17:ea:0f:23:f2:90:6a:0e:f1:68:1c:cb:b3:f2:6c:86:24:43: 56:74:8d:29:a1:ec:03:a2:77:6e:b4:14:f2:f2:c5:88:9b:36: d4:37:fc:89:bd:bf:74:fe:76:8a:de:c6:94:57:e4:f6:49:c7: 25:31:12:7d:21:16:4c:0d:d7:f2:ed:70:eb:2e:b0:aa:03:be: e8:b9:59:45:3e:b7:89:b9:f6:84:eb:cd:ce:b2:29:05:c1:cc: 31:70:17:6c:1c:c2:98:a9:c0:b6:6b:2b:c7:7e:b9:23:ae:15: 65:e0:de:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4MDQxMTAvBgNVBAUTKEEwRkE2NkY2OTM0QUEyODEzRTFBMUYwMDczOTU5MEM2 MzU3RDQwREEwHhcNMjQwNTMxMDgwMTQyWhcNMjQwNjA3MDgwMTQxWjAYMRYwFAYD VQQDEw02NjU5ODNlNi02ZTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycOmB/+YeDHIAisquoarxTtTCBCCvJWq3kPQEuWWPM+4DzDrdBL7nN0lEYRM gG3KomWyrEYdRVvBiqe6dB0wq5ce9pkBtGoursJYomDfGjqoOQdSekkA2Y20lFgq abiHcKrJd98Lpf8lTTg5LmOwgj6td5H2j1c6S5DbrV3Xvd8MomhO8ItmmfWfecI1 yGW09yAJCgbCQUJhE7X68vOTx/WDr4VuebAdPHzDjYhWIMPbVBE5xgYFCLsbcPtT uLnzWsxxP/Al/eMdRLx+uCHOIxF+GNBLO9S/oz7ZoWOcSNWgCAXnCSprYVctNkHp BPUyJ+C3KEtKDhi+cNQjziRZYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgOVhI/ QG/KKVia1kkg0hAXihG4MB8GA1UdIwQYMBaAFKD6ZvaTSqKBPhofAHOVkMY1fUDa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTgwNC9DMjEzOEQ0MDUy QkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29vRS1HaDhBYzVXUXhqVjlR Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29QcG05cE5Lb29FLUdoOEFjNVdReGpWOVFOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTgwNC9DMjEzOEQ0MDUyQkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29v RS1HaDhBYzVXUXhqVjlRTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGylXLXwCINNNQwSKFY5E/lOAoB/ur3tMADS8XLRt01hhtMuQHdU09 8BDXWV6OfniFvsfwrcA05tppARaDmmxSMkqjDrdW75CPZBl05KaVle6O/SHAyPf4 D+8Bz1d+lx2sIs7iglhIGszvZsR/UVlLBCY77ccwLyP9TX1TcmzSsMeBfnfVBzEz kMbCPNWftBQX6g8j8pBqDvFoHMuz8myGJENWdI0poewDondutBTy8sWImzbUN/yJ vb90/naK3saUV+T2ScclMRJ9IRZMDdfy7XDrLrCqA77ouVlFPreJufaE683OsikF wcwxcBdsHMKYqcC2ayvHfrkjrhVl4N7r -----END CERTIFICATE-----Generated at Fri May 31 08:39:02 2024 by rpki-client on console-fra.rpki-client.org